Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/nnld0BGVNBRxXMaHXf05xh5Rgcg.mft
File:                     nnld0BGVNBRxXMaHXf05xh5Rgcg.mft (raw, json)
Hash identifier:          Y5ao22UNfRHobnW2blzD+iQFMF+UkUV4fRaDtpB9i6I=
Subject key identifier:   B9:35:26:EB:0F:4C:36:DD:CE:84:98:23:3F:91:FD:07:A1:5E:41:7F
Authority key identifier: 9E:79:5D:D0:11:95:34:14:71:5C:C6:87:5D:FD:39:C6:1E:51:81:C8
Certificate issuer:       /CN=9e795dd011953414715cc6875dfd39c61e5181c8
Certificate serial:       019EBF912C48BEFA92BFA4E81BD0122ADD95
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nnld0BGVNBRxXMaHXf05xh5Rgcg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/nnld0BGVNBRxXMaHXf05xh5Rgcg.mft
Manifest number:          B8
Signing time:             Sat 13 Jun 2026 06:00:22 +0000
Manifest this update:     Sat 13 Jun 2026 06:00:22 +0000
Manifest next update:     Sun 14 Jun 2026 06:00:22 +0000
Files and hashes:         1: 0ukpVUSxlWUjEn8_3Xhh5EdLxE4.asa (hash: j4wQB6gt1Z/UKS98HN0+WjuxJxJyXB/YyRal6d7AqSk=)
                          2: 1yqa6lZRZYeSSmivZYQ4ikxatJs.roa (hash: mjuZrhc0o+MFW3BdDUEXnqT8NQB8vf4lE8Az17wZWTc=)
                          3: 1zwO-pRpLQjpKdc2fMnL99i_j-Y.roa (hash: SYfKKB6gtn0cNSUNi0rlTL24CWOzIm0TRFFugkUSGaY=)
                          4: nnld0BGVNBRxXMaHXf05xh5Rgcg.crl (hash: IOXiPPzkavFBfOAtETuTIVo+NcFcyLVgKrmHDbOKsV4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/nnld0BGVNBRxXMaHXf05xh5Rgcg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/nnld0BGVNBRxXMaHXf05xh5Rgcg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nnld0BGVNBRxXMaHXf05xh5Rgcg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 06:00:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:bf:91:2c:48:be:fa:92:bf:a4:e8:1b:d0:12:2a:dd:95
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9e795dd011953414715cc6875dfd39c61e5181c8
        Validity
            Not Before: Jun 13 06:00:22 2026 GMT
            Not After : Jun 14 06:00:22 2026 GMT
        Subject: CN=b93526eb0f4c36ddce8498233f91fd07a15e417f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:88:fd:fa:1f:9e:65:b4:17:8c:fc:ba:1e:89:
                    de:1f:bc:ba:a7:bf:50:0c:92:27:44:00:d3:2f:11:
                    9a:31:7b:36:b8:a4:07:01:cb:fa:4d:4e:d0:f6:9b:
                    f4:e8:f1:5a:57:d0:04:2e:70:e7:66:d0:4c:b5:da:
                    7d:82:8d:20:e8:87:6c:03:48:41:11:b9:bd:55:6e:
                    15:e6:40:92:ad:bf:88:a6:45:7d:31:e0:18:59:c8:
                    29:e3:3f:f8:9d:91:c0:82:c7:a2:17:f3:21:3e:07:
                    68:b6:d3:60:24:ac:fc:76:6a:cb:5a:2d:b2:ff:22:
                    59:96:47:a2:95:4b:e0:80:79:6c:99:67:d9:4a:b1:
                    c5:0f:5b:f7:fe:55:1a:06:1a:cc:ad:41:33:95:29:
                    c1:cf:94:c7:07:8e:0d:aa:1c:09:db:fb:7f:bc:90:
                    5d:3d:e6:68:85:a7:72:37:13:c3:ec:32:fb:d4:71:
                    1d:80:4a:10:1c:2e:cb:00:01:52:40:ec:a2:0b:a0:
                    e9:c6:53:54:12:9c:4e:97:8c:ee:ad:e0:d7:ec:1f:
                    d5:1a:54:65:2f:02:0e:2f:76:8e:88:a3:17:94:2a:
                    f8:f3:7e:0b:53:f8:c7:47:b4:99:cf:0a:ea:e8:60:
                    12:db:65:c9:6a:91:85:c4:a5:a4:50:7c:57:0c:e1:
                    c9:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:35:26:EB:0F:4C:36:DD:CE:84:98:23:3F:91:FD:07:A1:5E:41:7F
            X509v3 Authority Key Identifier:
                keyid:9E:79:5D:D0:11:95:34:14:71:5C:C6:87:5D:FD:39:C6:1E:51:81:C8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nnld0BGVNBRxXMaHXf05xh5Rgcg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/nnld0BGVNBRxXMaHXf05xh5Rgcg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/07/df2e60-5b0f-4960-b9cd-55a3547abbd6/1/nnld0BGVNBRxXMaHXf05xh5Rgcg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:5f:cd:08:29:e9:11:54:8a:46:14:6e:d2:6b:3e:f0:bf:db:
         28:8f:1d:ef:25:d2:ef:c7:b9:7a:2a:d9:89:fe:4d:af:04:e7:
         29:8e:7e:15:37:f7:99:e5:db:ae:38:ca:7f:f9:e3:25:e4:f2:
         d9:32:b2:2d:2a:96:12:46:bc:23:cf:9e:86:c3:ff:16:0f:14:
         e3:eb:7e:20:e2:7c:bd:91:80:58:d9:6b:75:96:9e:af:f8:a4:
         cf:36:94:2d:46:46:20:72:83:8a:26:06:37:99:e0:99:6c:3d:
         eb:18:00:33:8d:65:2b:84:72:2c:ae:f2:d5:2b:7b:f7:c5:9c:
         24:53:d4:d7:3c:29:7c:a1:a2:0d:ce:b3:9e:1d:24:72:db:20:
         da:7d:bc:98:0b:df:ae:6e:ca:1a:df:d9:da:4e:41:cb:03:ea:
         34:18:62:75:d9:db:f5:d7:54:af:70:37:a1:70:63:f4:c6:5b:
         9e:fd:46:00:09:0d:8d:e8:30:ce:87:71:9f:e1:16:28:de:5b:
         c5:a2:32:80:1a:81:37:eb:46:00:68:3d:f7:ff:d9:61:67:f2:
         78:87:47:d1:44:46:e0:2c:14:dd:ca:d7:b3:29:c2:cf:ad:19:
         11:d6:bd:b6:e0:78:af:78:df:be:35:ad:db:1f:29:6f:72:2e:
         1e:24:50:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6/kSxIvvqSv6ToG9ASKt2VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllNzk1ZGQwMTE5NTM0MTQ3MTVjYzY4NzVkZmQzOWM2MWU1
MTgxYzgwHhcNMjYwNjEzMDYwMDIyWhcNMjYwNjE0MDYwMDIyWjAzMTEwLwYDVQQD
EyhiOTM1MjZlYjBmNGMzNmRkY2U4NDk4MjMzZjkxZmQwN2ExNWU0MTdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4j9+h+eZbQXjPy6HoneH7y6p79Q
DJInRADTLxGaMXs2uKQHAcv6TU7Q9pv06PFaV9AELnDnZtBMtdp9go0g6IdsA0hB
Ebm9VW4V5kCSrb+IpkV9MeAYWcgp4z/4nZHAgseiF/MhPgdottNgJKz8dmrLWi2y
/yJZlkeilUvggHlsmWfZSrHFD1v3/lUaBhrMrUEzlSnBz5THB44NqhwJ2/t/vJBd
PeZohadyNxPD7DL71HEdgEoQHC7LAAFSQOyiC6DpxlNUEpxOl4zureDX7B/VGlRl
LwIOL3aOiKMXlCr4834LU/jHR7SZzwrq6GAS22XJapGFxKWkUHxXDOHJ8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLk1JusPTDbdzoSYIz+R/QehXkF/MB8GA1UdIwQY
MBaAFJ55XdARlTQUcVzGh139OcYeUYHIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbm5sZDBCR1ZOQlJ4WE1hSFhmMDV4aDVSZ2NnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9kZjJlNjAtNWIwZi00OTYwLWI5Y2Qt
NTVhMzU0N2FiYmQ2LzEvbm5sZDBCR1ZOQlJ4WE1hSFhmMDV4aDVSZ2NnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9kZjJlNjAtNWIwZi00OTYwLWI5Y2QtNTVhMzU0N2FiYmQ2
LzEvbm5sZDBCR1ZOQlJ4WE1hSFhmMDV4aDVSZ2NnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaF/NCCnp
EVSKRhRu0ms+8L/bKI8d7yXS78e5eirZif5NrwTnKY5+FTf3meXbrjjKf/njJeTy
2TKyLSqWEka8I8+ehsP/Fg8U4+t+IOJ8vZGAWNlrdZaer/ikzzaULUZGIHKDiiYG
N5ngmWw96xgAM41lK4RyLK7y1St798WcJFPU1zwpfKGiDc6znh0kctsg2n28mAvf
rm7KGt/Z2k5BywPqNBhiddnb9ddUr3A3oXBj9MZbnv1GAAkNjegwzodxn+EWKN5b
xaIygBqBN+tGAGg99//ZYWfyeIdH0URG4CwU3crXsynCz60ZEda9tuB4r3jfvjWt
2x8pb3IuHiRQzQ==
-----END CERTIFICATE-----
Generated at Sat Jun 13 13:26:24 2026 by rpki-client